CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2008-0462
https://notcve.org/view.php?id=CVE-2008-0462
Cross-site scripting (XSS) vulnerability in the Archive 5.x before 5.x-1.8 module for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en el módulo Archive 5.x, (versiones posteriores a la 5.x-1.8) para Drupal, permite que atacantes remotos inyecten, a su elección, código web o HTML a través de vectores no especificados. • http://drupal.org/node/213478 http://secunia.com/advisories/28632 http://www.securityfocus.com/bid/27436 http://www.vupen.com/english/advisories/2008/0278 https://exchange.xforce.ibmcloud.com/vulnerabilities/39898 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •